search

StevenBlack / hosts

🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
MIT License
26.62k stars 2.21k forks source link

Authentication for MS Teams requires "browser.pipe.aria.microsoft.com" #2232

Closed PaulTGG closed 1 year ago

PaulTGG commented 1 year ago

I'm loathed to write this (I promise I only use Teams because I have to for my job... ha), but

browser.pipe.aria.microsoft.com

appears to be required to log in to Teams. When it's blocked, Teams ends up in a loop that ends with a generic "we can't log you in, try again" error.

(On a side note, there's also a mobile.pipe.aria.microsoft.com in the block list. I haven't tried logging into Teams on mobile, but if anyone else is having issues on mobile, check there first.)

welcome[bot] commented 1 year ago

Hello! Thank you for opening your first issue in this repo. It’s people like you who make these host files better!

sudarpo commented 1 year ago

If you use Microsoft SaaS, it's best that you create your own whitelist.

Here is my whitelist

data.microsoft.com
aria.microsoft.com
smartscreen.microsoft.com
officeapps.live.com
hiyan commented 1 year ago

I have browser. and mobile.pipe.aria.microsoft.com blocked and have no problem using both Teams and MS Authenticator app.

StevenBlack commented 1 year ago

thank you for this Paul @PaulTGG. And thank you for your input Wei @hiyan.

An other consideration is, we've been listing mobile.pipe.aria.microsoft.com for a long time. It's been at least 18-months, likely longer. If this domain was problematic for logging into MS Teams, I would think we'd have heard about that.

MaZZly commented 9 months ago

I was having trouble with having to "login again" every morning when I started working.

The "login again/try again"-button never worked (endless loop, showing the same dialogue again after clicking the button and loading the page).

The only thing that worked was to "Clear site data" for teams.microsoft.com to be able to log in again. (Dev tools > Application > Clear site data)

Looking at the PiHole logs, the browser.pipe.aria.microsoft.com was being queried and blocked, so I found this issue and decided to try and whitelist the domain.

No issue with having to clear data to login since then... This might be related to our Organization's SSO setup to access Teams, but anyway whitelisting the domain seems to have done the trick :)